09 Jan '13, 10pm

「Ruby on Rails」に極めて深刻な脆弱性、直ちにアップデートを - ITmedia エンタープライズ

Ruby on Rails Action Pack framework insecurely typecasts YAML and Symbol XML parameters

Full article: http://www.itmedia.co.jp/enterprise/articles/1301/10/news...

Tweets

Ruby on Rails Bootcamp in Seattle

codefellows.org 10 Jan '13, 2pm

Immersive education is the best way to learn how to code. You'll be living and breathing Ruby on Rails every day of the we...

DigiD offline door lek in Ruby on Rails

webwereld.nl 09 Jan '13, 12pm

DigiD is vandaag offline gehaald wegens een gat in ontwikkelaarsplatform Ruby on Rails. Via de kwetsbaarheid zijn applicat...

Эксплойт для последних уязвимостей Ruby on Rails

Эксплойт для последних уязвимостей Ruby on Rails

xakep.ru 10 Jan '13, 5am

Среди известных сайтов, которые работают на Ruby on Rails — Github, Yammer, Scribd, Groupon, Shopify и Basecamp. На Ruby н...

ModSecurity Mitigations for Ruby on Rails XML Exploits

ModSecurity Mitigations for Ruby on Rails XML E...

blog.spiderlabs.com 10 Jan '13, 6pm

There is big trouble in Ruby on Rails (RoR) land... The issue is related to XML parsing of YAML document elements or Symbo...

Ruby 開発備忘録: vanityとchankoを使ってRailsで簡単安全にABテストをする

face-do.blogspot.com 10 Jan '13, 2pm

module Sample include Chanko::Unit active_if do |context, options| ab_test(:price_options) end scope(:controller) do funct...

ثغره في إطار عمل Ruby on Rails

isecur1ty.org 12 Jan '13, 8pm

Exploiting Ruby on Rails with metasploit